JavaScriptを使って学ぶEnd-to-Endセキュリティ Appendix

JavaScript End-to-End
:
1),2)
1)
2)
January 26, 2020
Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS Appendix January 26, 2020 1 / 34

JavaScript End-to-End

1
1
https://www.ipa.go.jp/security/awareness/vendor/software.html

:
⇓
2
2
RFC8017 RSAES-PKCS1-v1 5

PKCS (Public Key Cryptography Standards)
PKCS
RSA Security 3
RSA Labs
#1,...#15 15 4
RSA #1
3
RSA Rivest-Shamir-Adleman
4

PKCS
IETF RFC

PKCS (1/2)
Ver.
PKCS #1 v2.2 RSA Cryptography
Specifications5
RSA
PKCS #3 v1.4 Diffie–Hellman Key
Agreement Standard
Diffie-Hellman RFC
Internet Key Exchange (IKE) (?)
PKCS #5 v2.1 Password-Based Cryp-
tography Specification6
(PBKDF1/2, PBES1/2)
PKCS #6 Extended-Certificate
Syntax Standard
X.509v1 X.509v3
PKCS #7 (?) Cryptographic Message
Syntax Standard7
S/MIME
(RFC5652) (?)
PKCS #8 (?) Private-Key Information
Syntax Specification8
(RFC5968) v1.2 (?)
PKCS #9 v2.0 Selected Object Classes
and Attribute Types9
5
https://tools.ietf.org/html/rfc8017
6
7
8
9

PKCS (2/2)
Ver.
PKCS #10 v1.7 Certiﬁcation Request
Syntax Speciﬁcation10
PKCS
RFC5967
PKCS #11 v2.40 Cryptographic Token In-
terface
Cryptoki (H/W
)
OASIS PKCS 11 Technical Com-
mittee
PKCS #12 v1.1 Personal Information
Exchange Syntax Stan-
dard11
IETF IESG
PKCS #15 v1.1 Cryptographic Token In-
formation Format Stan-
dard
IC ISO/IEC 7816-15
IETF RFC Republication
10
https://tools.ietf.org/html/rfc2986 + https://tools.ietf.org/html/rfc5967
11

NIST FIPS SP80012
NIST FIPS/SP800
(NIST; National Institute of Standards and
Technology)
FIPS; Federal Information Processing Standards:
NIST
SP800; Special Publication:
12
: https://www.ipa.go.jp/security/publications/nist/

NIST FIPS
ANSI/ISO/IEEE
NIST FIPS
‘Rijndael’
FIPS 197; Advanced Encryption Standard
(AES)

IETF RFC
RFC (Request for Comments)
IETF (Internet Engineering Task Force)
13
( )
ITU-T ISO
Rough
13
https://www.nic.ad.jp/ja/rfc-jp/RFC-Category.html

RFC 5 :
Standards Track: Proposed Standard → Internet Standard
Informational:
RSA PKCS#1 v2.1 = RFC8017
Experimental:
Historical:
Best Current Practice:
Standard Track, Informational, Experimental PKCS

RFC
1: OpenID Connect
: JWS14
, JWE15
, JWK16
, JWT17
OpenID
Foundation RFC Standards Track
2: PKCS#1, #5, #9 RSA
Informational RFC
3: HTTPS TLS v1.318
Standards Track
RFC
14
JSON Web Signature https://tools.ietf.org/html/rfc7515
15
JSON Web Encryption https://tools.ietf.org/html/rfc7516
16
JSON Web Key https://tools.ietf.org/html/rfc7517
17
JSON Web Token https://tools.ietf.org/html/rfc7519
18

ISO/IEC JTC 1
ISO19
/IEC20
JTC (Joint Technical Committee) 1
ISO IEC
27 subcommittee
(SC27)
ISO/IEC JTC 1
19
; International Organization for Standardization
20
; International Electrotechnical Commission

ISO/IEC JTC1 SC27 5 Working Group 21
WG2
WG 1 (
ISMS)
WG 2 :
WG3
WG4
WG5
21
https://www.itscj.ipsj.or.jp/hyojunka/h_sn_member/h_sn_katsudo/h_sn_
katsudo2013/sc27_2013.html

W3C (World Wide Web Consortium)
W3C
WWW Web
API HTML, XML, DOM
(Recommendation)

W3C WG (Working Group)
WebCrypto WG22
: WebCrypto API
WebAuthn WG23
: FIDO
24
22
https://www.w3.org/2012/webcrypto/ Close
23
https://www.w3.org/blog/webauthn/
24
FIDO2 WebAuthn
https://www.w3.org/2019/03/pressrelease-webauthn-rec.html.ja
FIDO2 CTAP ITU-T

ITU-T SG17
ITU-T (International Telecommunication Union Telecommunication
Standardization Sector) SG17 (Study Group 17) 25
ITU-T: ITU (International Telecom. Union; )
Study Group 17: ITU-T
25
https://www.ituaj.jp/wp-content/uploads/2016/07/2016_08-06-spotITU-T.pdf

ITU-T SG17 SDN IoT ITS
SPAM ID
FIDO
26
26
FIDO UAF 1.1 CTAP https://fidoalliance.
org/fido-alliance-specifications-now-adopted-as-itu-international-standards/
Web FIDO2 WebAuthn W3C

;
CRYPTOREC27
(2000 )
NESSIE28
EU (2000 )
27
Cryptography Research and Evaluation Committee
28
New European Schemes for Signature, Integrity, and Encryption

IETF (RFC), ISO, NIST
29
29
PKCS RSA Labs. IETF
Internet Draft

;
FIDO Alliance:
OpenID Foundation:
Ecma International: JavaScript
(ECMAScript) JS
Ecma 30
30
: Ecma ECMA-334 “C#” ISO/IEC 23270

:
DER (Distinguished Encoding Rules) : ANS.1
RSA
PEM (Privacy Enhanced Mail31
): DER Base64
SECG SEC1 : ( ) SECG
32
JWK/JWE/JWS (JSON Web Key/Encryption/Signature) :
JSON 33
JavaScript JWK
OpenSSL DER PEM
31
32
http://www.secg.org/sec1-v2.pdf
33
https://tools.ietf.org/html/rfc7517, https://tools.ietf.org/html/rfc7516,

Table: 34
DER/PEM SECG SEC1 JWK/E/S
RSA 1) PKCS#1 N/A RFC7517
2)RFC528035
RSA RFC595836
, PKCS#137
N/A RFC7517
ECC RFC548038
SECG SEC1 v2 RFC7517
ECC RFC595839
, RFC591540
SECG SEC1 v2 RFC7517
(AES) N/A N/A RFC7517
RFC5280 ( ) N/A N/A 41
RSA N/A N/A RFC7516
ECDH+AES N/A N/A RFC7516
AES N/A N/A RFC7516
HMAC N/A N/A RFC7515
RSA N/A N/A RFC7515
ECDSA RFC5759 N/A RFC7515
34
35
SubjectPublicKeyInfo
36
RFC5958 PKCS#8
37
RSA
38
SubjectPublicKeyInfo
39
40
ECC
41
X.509 URI https://tools.ietf.org/html/rfc7517

WebCrypto API/Node.js
WebCrypto API:
RFC5280 ( ) RFC5958 ( )
JWK
Node.js Crypto:
RFC5280 ( ) RFC5958 ( )
PKCS#1
42
42
jscu
https://github.com/junkurihara/jscu/tree/develop/packages/js-crypto-key-utils

ECDH, ECDSA ( )
RSA (ECDH/ECDSA)
RSA:
:
43
RSA “ ”
43
e.g., 256bit P-256 P-256K

SEC2: SECG 44
ANSI X9.62: 45
NIST FIPS186-4: 46
47
NIST
FIPS 186
44
http://www.secg.org/sec2-v2.pdf
45
American National Standards Institute, “Public Key Cryptography for the Financial Services
Industry: The Elliptic Curve Digital Signature Algorithm (ECDSA),” ANSI X9.62, November 2005.
46
https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf
47
https://tools.ietf.org/html/rfc8422#appendix-A

WebCrypto API/Node.js NIST
P-256: = 256bits, 128bit AES
P-384: = 384bits, 192bit AES
P-521: = 521bits, 256bit AES
Bitcoin Blockchain 48
WebCrypto API
48
SECG secp256k1 P-256K

Safe Curves: https://safecurves.cr.yp.to/
⇓
NIST
49
“
” API

JavaScriptを使って学ぶEnd-to-Endセキュリティ Appendix

Recommended

Recommended

More Related Content

Similar to JavaScriptを使って学ぶEnd-to-Endセキュリティ Appendix

Similar to JavaScriptを使って学ぶEnd-to-Endセキュリティ Appendix (20)

Recently uploaded

Recently uploaded (20)

JavaScriptを使って学ぶEnd-to-Endセキュリティ Appendix